Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/e59168-82d2-455e-8f88-c155f95436e1/1/kTw7zMm8daAA1kVwr2jV22c2Jtw.roa
File: kTw7zMm8daAA1kVwr2jV22c2Jtw.roa (raw, json)
Hash identifier: PXmyv/NEYRzsZfgf0D2wJk+OxL8aWm1i6rQx1+sj0fg=
Subject key identifier: 91:3C:3B:CC:C9:BC:75:A0:00:D6:45:70:AF:68:D5:DB:67:36:26:DC
Certificate issuer: /CN=a7eeda65dcd4387d7227005c1e13a06d44877b6f
Certificate serial: 03C34316
Authority key identifier: A7:EE:DA:65:DC:D4:38:7D:72:27:00:5C:1E:13:A0:6D:44:87:7B:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p-7aZdzUOH1yJwBcHhOgbUSHe28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/e59168-82d2-455e-8f88-c155f95436e1/1/kTw7zMm8daAA1kVwr2jV22c2Jtw.roa
Signing time: Sat 01 Jan 2022 14:07:21 +0000
ROA not before: Sat 01 Jan 2022 14:07:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61272
IP address blocks: 185.177.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63128342 (0x3c34316)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7eeda65dcd4387d7227005c1e13a06d44877b6f
Validity
Not Before: Jan 1 14:07:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=913c3bccc9bc75a000d64570af68d5db673626dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:9e:2f:32:f6:04:22:03:a4:67:40:0d:d0:21:
1e:73:3a:7c:0a:c5:b6:ff:bc:f7:1e:28:88:6e:73:
05:49:2d:96:68:c9:aa:4a:25:9c:9b:84:4b:59:1c:
11:da:62:7f:77:5d:9f:6f:3e:73:24:4c:9f:7f:d0:
1c:1e:b9:c3:28:82:2d:9c:45:d1:f9:91:4a:0c:98:
1b:ac:94:ea:cd:5a:38:75:aa:e2:8f:be:a8:8d:18:
1a:36:02:69:3b:d0:ff:9f:6b:a9:c7:a2:39:ab:f1:
b7:d8:04:38:b0:b9:7f:33:88:6b:62:74:df:bf:0c:
be:9b:10:81:a1:78:4d:88:62:be:38:cb:be:6d:fc:
b8:7f:43:cb:ee:7e:82:db:01:53:88:ae:60:ea:59:
0f:03:04:78:20:a9:dd:1f:89:e2:31:af:4b:4d:a6:
50:e4:a8:74:19:4c:3a:93:53:ef:d9:01:53:e0:3b:
5c:41:c2:1e:6e:44:1c:3f:54:f8:25:b7:be:a5:d5:
8c:1a:67:54:0e:bb:1a:e9:e1:0f:64:7f:df:62:72:
b3:7e:91:e6:9a:4b:98:22:a3:3c:7c:c0:1b:42:38:
04:5e:f5:48:89:83:c6:14:a2:3c:aa:8f:21:05:be:
1b:58:ca:61:36:b8:55:23:5c:b7:6e:0d:da:c6:f3:
c6:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:3C:3B:CC:C9:BC:75:A0:00:D6:45:70:AF:68:D5:DB:67:36:26:DC
X509v3 Authority Key Identifier:
keyid:A7:EE:DA:65:DC:D4:38:7D:72:27:00:5C:1E:13:A0:6D:44:87:7B:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p-7aZdzUOH1yJwBcHhOgbUSHe28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/e59168-82d2-455e-8f88-c155f95436e1/1/kTw7zMm8daAA1kVwr2jV22c2Jtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/e59168-82d2-455e-8f88-c155f95436e1/1/p-7aZdzUOH1yJwBcHhOgbUSHe28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.150.0/24
Signature Algorithm: sha256WithRSAEncryption
84:34:3d:28:55:ea:9e:e7:85:28:e7:fb:cb:9a:9e:c8:c4:fa:
9d:d8:7b:7f:8b:39:b6:6e:10:ad:81:a7:e0:95:85:ee:94:38:
19:1e:c1:ab:16:33:58:1d:8d:84:42:ef:f5:da:72:92:8b:5c:
32:48:07:a4:78:f9:29:a8:eb:7c:c8:75:ac:4d:d8:b3:46:d0:
f9:9b:de:20:c7:22:a1:22:d2:c9:42:ea:e1:cb:fd:c6:d0:e0:
fc:b6:3a:ad:7d:5d:6e:c0:10:0e:ef:3d:41:ca:9f:18:63:de:
20:7f:d3:ff:dc:cf:c2:d1:d5:0b:b6:02:86:fa:43:44:5b:de:
2f:f6:cf:f6:88:a7:2e:ea:71:81:ef:b1:e3:40:26:64:61:b9:
7d:f1:61:76:fb:37:dc:39:22:55:be:c7:01:85:ba:3f:2c:66:
37:ec:7c:5d:fc:f3:0b:ef:28:83:fe:bf:33:c7:69:e1:4b:9a:
b2:0d:1d:61:4e:75:c8:0b:e8:6c:32:05:33:32:33:e6:4f:65:
6f:61:d5:d6:b0:1d:e6:1c:61:d4:4a:a4:94:dc:7f:f9:17:77:
b3:b8:b3:57:a0:10:d0:77:f1:6f:ac:72:a2:37:de:1e:3c:c6:
ad:ce:40:e5:82:49:0e:4c:89:7e:5e:97:7c:f5:7d:85:2d:f9:
58:c9:de:06
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA8NDFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
N2VlZGE2NWRjZDQzODdkNzIyNzAwNWMxZTEzYTA2ZDQ0ODc3YjZmMB4XDTIyMDEw
MTE0MDcyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTEzYzNiY2NjOWJj
NzVhMDAwZDY0NTcwYWY2OGQ1ZGI2NzM2MjZkYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOmeLzL2BCIDpGdADdAhHnM6fArFtv+89x4oiG5zBUktlmjJ
qkolnJuES1kcEdpif3ddn28+cyRMn3/QHB65wyiCLZxF0fmRSgyYG6yU6s1aOHWq
4o++qI0YGjYCaTvQ/59rqceiOavxt9gEOLC5fzOIa2J0378MvpsQgaF4TYhivjjL
vm38uH9Dy+5+gtsBU4iuYOpZDwMEeCCp3R+J4jGvS02mUOSodBlMOpNT79kBU+A7
XEHCHm5EHD9U+CW3vqXVjBpnVA67GunhD2R/32Jys36R5ppLmCKjPHzAG0I4BF71
SImDxhSiPKqPIQW+G1jKYTa4VSNct24N2sbzxgkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSRPDvMybx1oADWRXCvaNXbZzYm3DAfBgNVHSMEGDAWgBSn7tpl3NQ4fXIn
AFweE6BtRId7bzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3AtN2FaZHpVT0gxeUp3QmNIaE9nYlVTSGUyOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTgvZTU5MTY4LTgyZDItNDU1ZS04Zjg4LWMxNTVmOTU0MzZlMS8x
L2tUdzd6TW04ZGFBQTFrVndyMmpWMjJjMkp0dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTgv
ZTU5MTY4LTgyZDItNDU1ZS04Zjg4LWMxNTVmOTU0MzZlMS8xL3AtN2FaZHpVT0gx
eUp3QmNIaE9nYlVTSGUyOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmxljANBgkqhkiG9w0BAQsFAAOC
AQEAhDQ9KFXqnueFKOf7y5qeyMT6ndh7f4s5tm4QrYGn4JWF7pQ4GR7BqxYzWB2N
hELv9dpykotcMkgHpHj5KajrfMh1rE3Ys0bQ+ZveIMcioSLSyULq4cv9xtDg/LY6
rX1dbsAQDu89QcqfGGPeIH/T/9zPwtHVC7YChvpDRFveL/bP9oinLupxge+x40Am
ZGG5ffFhdvs33DkiVb7HAYW6PyxmN+x8XfzzC+8og/6/M8dp4Uuasg0dYU51yAvo
bDIFMzIz5k9lb2HV1rAd5hxh1EqklNx/+Rd3s7izV6AQ0Hfxb6xyojfeHjzGrc5A
5YJJDkyJfl6XfPV9hS35WMneBg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:19 2024 by rpki-client on console-ams.rpki-client.org